SiteLock Website Security

SiteLock Website Security protects your web investment by keeping you and your customers safe from hackers and other online threats. Every time shoppers place an order, they’re trusting you to keep them safe from hackers who steal information or spread spyware and viruses. Deliver on that promise with SiteLock. It not only finds malware but the security gaps hackers use to break in.

How SiteLock Website Security Works

Meet Geoff and Kathleen.

It’s a typical day for Geoff and Kathleen, with shoppers coming to their business websites in spurts. Hidden among the legitimate visitors is a hacker, who looks for and finds a way to break in.

Without SiteLock

The hacker plants malware on Geoff’s site.

Geoff’s customers begin to see offensive messages and leave in disgust, swearing never to return.

Some visitors are taken to a fake site, where they submit their bank
information without suspecting a thing.

By the time Geoff notices something’s wrong, customers are rioting
on Twitter. It’ll take months to undo the damage.

With SiteLock

The hacker plants malware on Kathleen’s site.

SiteLock’s daily scan discovers the malware, notifying Kathleen of where it took place. With her SiteLock Premium plan, the malware is removed.

Kathleen’s customers continue to browse her site, safely and without interruption, as SiteLock keeps scanning in the background.

Kathleen gets back to business without any downtime. Her customers stay safe and her reputation stays golden.

SiteLock Website Security Features

Find. Fix. Prevent.

SiteLock scans your website to find malicious software (malware) before it can harm you or your customers. Hackers insert malware onto legitimate websites in order to steal customer passwords and credit card numbers, deface or destroy the website or use your server to launch attacks on other websites.

Daily scans root out bugs.

We notify you as soon as we find any of the following problems:

Search engine/Browser blacklisting

Spam blacklisting

Application vulnerabilities, including SQLi & XSS

Website malware and viruses

File changes and suspicious code

Backdoors left by hackers

What you get with SiteLock

Daily malware scan

Database protection

Automated attack blocking

SiteLock Trust Seal

Search engine blacklist monitoring

CAPTCHA security

Eliminates comment spam

Security alerts

Unlimited expert support

*Money-back guarantee

Our SMART tool takes out the trash.

Automatically removes malware and back-end files to keep your site from being disabled or blacklisted by search engines. (Professional and Premium plans)

Close the deal with our Trust Seal

Top 10 Threats

Injection.

It’s not uncommon for web applications to have injection flaws, especially SQL injection flaws. A hacker who finds one will send malicious data as part of a command or query. The attacker’s message tricks the app into changing data or executing a command it was not designed to obey.

Cross-site Scripting.

Cross-site Scripting flaws occur whenever an application sends user-supplied data to a web browser without validating it first. Hackers use these flaws to hijack users away from the site or deface it, thereby costing the site owner in lost business.

Insecure Direct Object References.

Applications that lack checks to verify a user is authorized to view particular content can be manipulated to access private data.

Many web applications don’t do enough to protect sensitive data such as credit card numbers, Social Security numbers and login credentials . Thieves may use this data for identity theft, credit card fraud or other crimes.

Failure to Restrict URL Access.

Often an app will protect sensitive interactions by not showing links or URLs to unauthorized users. Attackers use this weakness to access those URLs directly in order to carry out unauthorized actions.

Insufficient Transport Layer Protection.

Applications often fail to authenticate, encrypt and protect the confidentiality of network traffic. Some use weak algorithms, expired or invalid certificates or use them incorrectly. This allows hackers to “eavesdrop” on online exchanges. An SSL Certificate typically neutralizes this threat.

Invalidated Redirects & Forwards.

Web applications often redirect or forward legitimate users to other pages and websites, using insecure data to determine the destination. Attackers use this weakness to redirect victims to phishing or malware sites, or use forwards to open private pages.

SiteLock Website Security FAQs

What is SiteLock?

SiteLock is one of our most powerful website security solutions. It not only scans your site for security gaps but detects malware that hackers could use to steal information, infect your customers or divert traffic.

If we find malware or holes in your site’s security, we notify you by email so you can quickly close the gap and beat the bad guys to the punch. If you want automatic malware removal, choose our Professional plan.

For totally worry-free protection, our Premium plan not only finds and removes malware, it also scans for known website vulnerabilities on a daily basis.

Why do I need SiteLock?

Website security is vital to your business success. If people don’t feel safe on your site, they won’t come back. But if you can show visitors your site protects them from hackers and thieves, they’re more likely to place an order or refer a friend.

Once our malware scannerconfirms that your site is clear of known vulnerabilities and malware, the SiteLock Trust Seal can be displayed to your customers. Studies show that displaying this seal increases sales by more than 10%, with 70% of site visitors saying they look for a verifiable 3rd-party trust seal before submitting personal information to a website.

SiteLock emails you the exact location of any malware or vulnerabilities it’s found. With the Professional or Premium plan, our SMART malware removal tool automatically removes malware – no action needed from you.

Our security system not only protects you and your customers, it keeps your website from being blacklisted by search engines.

You can check your latest scan results anytime via our easy-to-read online dashboard. It delivers real-time reports in English, Spanish, French, German, Dutch, Italian, Polish and Portuguese (Brazil and Portugal), with more languages to come. For really thorny problems, SiteLock maintains an award-winning team of online security professionals ready to step in and get you back online in a hurry.

How does SiteLock compare to other web security services?

A lot of products can tell you if your website has been infected by malware. What they can’t do is fix it for you. With SiteLock, you don’t have to worry about a thing – our vulnerability scanner checks your website daily, automatically removing any malware or suspicious links it finds (Professional and Premium plans only). It’s like having your own website security guard on duty 24/7.

If I have an SSL Certificate, why do I need SiteLock?

An SSL certificate secures the information passed back and forth between visitors and your website (i.e. credit card information, login name and password) but it can’t find malware or the other vulnerabilities hackers use to break in and do damage.

I have anti-virus software. Do I need SiteLock?

Yes. Anti-virus software protects your computer from malware and viruses, but it doesn’t protect your website. And while it’s invaluable, anti-virus software can’t detect existing vulnerabilities in your site such as cross-site scripting and code injections. It also doesn’t let you know when security threats and vulnerabilities have been found or how to fix them. SiteLock’s malware scanner does.

I just bought SiteLock. Now what?

SiteLock setup only takes 5 minutes. Simply log in to your Hiya.Digital account, and click on SiteLock. Click Launch next to the account you want to use, and then provide the requested information.

If you already host your website with us, that’s it! Website security scans occur every 24 hours – so check back to view the results.